I have little knowledge of LDAP but need to configure a Domino server to authenticate web users using LDAP. I have installed the server with the LDAP option clicked. Now I’m lost. I get the login box when connecting via the browser and the LDAP task is running but there must be more to it? What else do I need to configure/test in order for this to work. Any articles or suggestions would be greatly appreciated.
I am not a true Notes admin.
Subject: LDAP configuration
Enabling LDAP at server setup turns on the LDAP server task, which makes Domino an LDAP server, publishing its address book contents over LDAP. You don’t need this; you can turn off the LDAP task (take it out of the SERVERTASKS param in the ini). Instead, you want to make Domino an LDAP client, which is done using directory assistance.
Subject: RE: LDAP configuration
The only way I could get the LDAP task to quit was to reload the server without the LDAP option checked. I created the Directory Assistance db and entered all the required info.
Now i receive the following error:
Error attempting to access the Directory *:3268 (no available alternatives), error is LDAP Server is NOT available.
Company is running active directory.
What have I forgot/overlooked.
LDAP server is up and running as I checked all that with network people.
I can authenticate with the Notes NAB. Is there a trick to person docs when authenticating with LDAP?
Subject: LDAP configuration
Think through what you are trying to do.
Q1. Why have you configured LDAP? What do you hope to achieve?
Q2. Accessing a Domino database via the web is one of your needs. Are there any other needs that you have? For example, I want to access some other web application?
Q3. How are your users set up. Are they totally defined in Domino or do you have users defined in some other place?
Subject: RE: LDAP configuration
The Boss wants to use windows logins. That’s the only reson I’m loading LDAP. He wants to remember only one password and login.
The users are defined in the windows active directory, I’m told.
Currently no users are defined in Domino except for me. I have a person doc in the NAB and that login authenticates fine.
I get the windows login box but no realm is displayed. I must have to import info from somewhere but from where and how?
Thanks for your response. I’m slooooooowly making headway.
Subject: RE: LDAP configuration
It seems to me that you need your Domino server to be an LDAP CLIENT instead of a host. What LDAP product are you trying to authenticate with? Also make sure your Internet Password field is blank in your names.nsf.
Directory Assistance database will do the connected lookup
Subject: RE: LDAP configuration
Ok, I now have the name of the companies LDAP server. Where in Domino do I place this information? And if the LDAP server requires a login where would I place that information? Know one has been able to tell me the LDAP product name yet, however.
In the Notes.ini there is this setting: LDAPSERVER=ldap://:.
Should this be set to the reflect the name of the server with the LDAP info, like in the Directory Assistance form, or the name of the server the ini file resides on?
And, from where within Notes is this being set? I change the setting in the Notes.ini file on the server to the company’s LDAP server but Notes keeps changing it back to the reflect the Name and Machine of the current server when I restart the Domino.
Subject: RE: LDAP configuration
Hi,
Do you have any luck with ldap configuration? I faced the same issue as you. The server kept on changing the ldap settings in notes.ini to reflect the domino server instead of the ldap server.
Anyone has any idea?
Thanks.